File _patchinfo of Package patchinfo.21482

<patchinfo incident="21482">
  <issue tracker="bnc" id="1190710">Firefox: firefox 91 update crashes in fips mode</issue>
  <issue tracker="bnc" id="1191332">VUL-0: MozillaFirefox / MozillaThunderbird: update to 93 and 91.2esr/78.15esr</issue>
  <issue tracker="cve" id="2021-38500"/>
  <issue tracker="cve" id="2021-38498"/>
  <issue tracker="cve" id="2021-38497"/>
  <issue tracker="cve" id="2021-38496"/>
  <issue tracker="cve" id="2021-38501"/>
  <issue tracker="cve" id="2021-32810"/>
  <packager>cgrobertson</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for MozillaFirefox</summary>
  <description>This update for MozillaFirefox fixes the following issues:

Firefox Extended Support Release 91.2.0 ESR

* Fixed: Various stability, functionality, and security fixes

MFSA 2021-45 (bsc#1191332)

* CVE-2021-38496: Use-after-free in MessageTask
* CVE-2021-38497: Validation message could have been overlaid on another origin
* CVE-2021-38498: Use-after-free of nsLanguageAtomService object
* CVE-2021-32810: Fixed Data race in crossbeam-deque
* CVE-2021-38500: Memory safety bugs fixed in Firefox 93, Firefox ESR 78.15, and Firefox ESR 91.2
* CVE-2021-38501: Memory safety bugs fixed in Firefox 93 and Firefox ESR 91.2

- Fixed crash in FIPS mode (bsc#1190710)
</description>
</patchinfo>
Places

File _patchinfo of Package patchinfo.21482

Places
